IETF Logo Mail Archive

Re: [Ace] I-D Action: draft-ietf-ace-pubsub-profile-07.txt

Cigdem Sengul <cigdem.sengul@gmail.com> Thu, 14 September 2023 13:11 UTC

Return-Path: <cigdem.sengul@gmail.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 51E3AC14CEFF for <ace@ietfa.amsl.com>; Thu, 14 Sep 2023 06:11:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EdgKB9zfFtKY for <ace@ietfa.amsl.com>; Thu, 14 Sep 2023 06:11:16 -0700 (PDT)
Received: from mail-pj1-x102e.google.com (mail-pj1-x102e.google.com [IPv6:2607:f8b0:4864:20::102e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 77702C14CE44 for <ace@ietf.org>; Thu, 14 Sep 2023 06:11:16 -0700 (PDT)
Received: by mail-pj1-x102e.google.com with SMTP id 98e67ed59e1d1-271c700efb2so734617a91.0 for <ace@ietf.org>; Thu, 14 Sep 2023 06:11:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1694697075; x=1695301875; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=Ozgti75AclhDlMOM3/3KiHsf6ZOEnl7KW04WhvJbLS4=; b=TQR28KSyujHsnYzfnSgzLJQOQwizlcWa4xX4K8CX11voHsd9Pf/gEEQwg0KX+Wmv0p z+vKJHn87lS2WN4HoZWg13no8hief+neqILwl3JzGei80Z5VgyrbHJ6hac3sy4kWgCVl hX7MdJt/3ZTrufXfNiQLwQzN6TQXyANpd3GsW66XMZphIavZfNJ5KBRwyyyhXkOIuOyC OmbRhAHFuOkeL7omxYCxy2H+P6Ir2HT+s6AURWFvsBvTAO61mPf9aLVvvIIMChE2ccGl H15oGa2k0umLiY6PoCBw0zNBD0hyQSXxZWRWvj3OHrzhqF37vA+TMlk19mXFtPUNXTjf 79lg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1694697075; x=1695301875; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=Ozgti75AclhDlMOM3/3KiHsf6ZOEnl7KW04WhvJbLS4=; b=Z7GGBjoJfb2iLsKec8ZjOpWiLq5BNAL5v2oyZ8D/4hNbrtmt/WgKT/FkjZdX7EILV5 +DE5U42A8abgBQWbtm9JHyhhbKeoPE3gfhFydciS0SMnqtXjnKaAN5Xp5R7LbmUQrMig wIUxeVowh4WzUvD6EioVAD8Rd4DvGlKE+eJcziE6n/XhM+O5+JJGiY0SlhSuTx6ELvK9 +INUxthQ5Jv/vgi75GmgShBBwU7Cz7a7k+nZH9ODihbHkOP5QWVQ++TqFmAZO8WWwWSv 7/niqW0ixK67lKsOUa5lI+yueb66P5P84+paFxoccexGA8AdQcS+YYzUqvHoNAMN/Fa3 osGQ==
X-Gm-Message-State: AOJu0YwbGBtu89MkUi+gKf/8jBMHoNQYRqar7LMi60D0EXGhIl5IRw/r ryIht3qd44HhMpsM+PoGcEsz6ZOwHFMCNU562U0Jwq8sbE0=
X-Google-Smtp-Source: AGHT+IEiNsxhEiThqM7b9XLbUYWgGojkkVr3Fll/Rzc1ubGc2QOMvgQTDOJuACXewBF8PunlmJG/xLTd2ofHS4FzcDY=
X-Received: by 2002:a17:90a:7782:b0:274:6cc9:ec6d with SMTP id v2-20020a17090a778200b002746cc9ec6dmr1598691pjk.44.1694697075211; Thu, 14 Sep 2023 06:11:15 -0700 (PDT)
MIME-Version: 1.0
References: <169464482041.41014.8711502777777951040@ietfa.amsl.com>
In-Reply-To: <169464482041.41014.8711502777777951040@ietfa.amsl.com>
From: Cigdem Sengul <cigdem.sengul@gmail.com>
Date: Thu, 14 Sep 2023 14:11:05 +0100
Message-ID: <CAA7SwCMnotrYdJN1i3BWyfqC9nDfZK6=Ae+W1G1Fv_1O95zYQg@mail.gmail.com>
To: ace@ietf.org
Content-Type: multipart/alternative; boundary="0000000000002b838e0605516974"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/Z0It1Ak0cLCPJAkGRTQs__sLsg4>
Subject: Re: [Ace] I-D Action: draft-ietf-ace-pubsub-profile-07.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Sep 2023 13:11:17 -0000

Dear Ace,
We made the following changes to the pub-sub draft with Marco:


   *  Clarified use of "application groups".

   *  Revised use of protocols and transport profiles with Broker and KDC.

   *  Revised presentation of authorization flow.

   *  Subscribers cannot be anonymous anymore.

    *  Revised scope definition.

    * Revised Join Response.

     * Revised COSE countersignature, COSE encrypt objects.

     * Clarified, revised, and made editorial improvements throughout.

Kind regards,
--Cigdem

On Wed, 13 Sept 2023 at 23:40, <internet-drafts@ietf.org> wrote:

> Internet-Draft draft-ietf-ace-pubsub-profile-07.txt is now available. It
> is a
> work item of the Authentication and Authorization for Constrained
> Environments
> (ACE) WG of the IETF.
>
>    Title:   Publish-Subscribe Profile for Authentication and Authorization
> for Constrained Environments (ACE)
>    Authors: Francesca Palombini
>             Cigdem Sengul
>             Marco Tiloca
>    Name:    draft-ietf-ace-pubsub-profile-07.txt
>    Pages:   43
>    Dates:   2023-09-13
>
> Abstract:
>
>    This document defines an application profile of the Authentication
>    and Authorization for Constrained Environments (ACE) framework, to
>    enable secure group communication in the Publish-Subscribe (pub/sub)
>    architecture for the Constrained Application Protocol (CoAP) [draft-
>    ietf-core-coap-pubsub], where Publishers and Subscribers communicate
>    through a Broker.  This profile relies on protocol-specific transport
>    profiles of ACE to achieve communication security, server
>    authentication, and proof-of-possession for a key owned by the Client
>    and bound to an OAuth 2.0 Access Token.  This document specifies the
>    provisioning and enforcement of authorization information for Clients
>    to act as Publishers and/or Subscribers, as well as the provisioning
>    of keying material and security parameters that Clients use for
>    protecting their communications end-to-end through the Broker.
>
>    Note to RFC Editor: Please replace "[draft-ietf-core-coap-pubsub]"
>    with the RFC number of that document and delete this paragraph.
>
> The IETF datatracker status page for this Internet-Draft is:
> https://datatracker.ietf.org/doc/draft-ietf-ace-pubsub-profile/
>
> There is also an HTML version available at:
> https://www.ietf.org/archive/id/draft-ietf-ace-pubsub-profile-07.html
>
> A diff from the previous version is available at:
> https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-pubsub-profile-07
>
> Internet-Drafts are also available by rsync at:
> rsync.ietf.org::internet-drafts
>
>
> _______________________________________________
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace
>

v2.23.0 | Report a Bug | By Email